SOC ANALYST (L3) – DFIR EXPERT @ MAANDAG® MIDDLE EAST
Maandag® Middle East is actively seeking a highly skilled SOC Analyst (L3) – DFIR Expert to join a leading Cybersecurity firm headquartered in Dubai. This is a permanent, 100% remote position tailored for professionals based in India who can start immediately or within a 30-day notice period. The successful candidate will be part of a high-performance team dedicated to maintaining the security integrity of global clients, working within a fast-paced and technically demanding environment. The monthly salary for this role ranges from USD 2000 to USD 5000.
As a senior member of the security operations center, you will be responsible for advanced investigations, threat hunting, and end-to-end incident response. The role mandates a background in Managed Detection and Response (MDR) service provider environments and requires mastery over SIEM and EDR technologies such as Microsoft Sentinel, Splunk, CrowdStrike, and Cortex. You will leverage your deep understanding of the MITRE ATT&CK framework and Windows Security to identify and mitigate complex cyber threats across diverse infrastructure, including Azure, AWS, and GCP cloud platforms.
As a senior member of the security operations center, you will be responsible for advanced investigations, threat hunting, and end-to-end incident response. The role mandates a background in Managed Detection and Response (MDR) service provider environments and requires mastery over SIEM and EDR technologies such as Microsoft Sentinel, Splunk, CrowdStrike, and Cortex. You will leverage your deep understanding of the MITRE ATT&CK framework and Windows Security to identify and mitigate complex cyber threats across diverse infrastructure, including Azure, AWS, and GCP cloud platforms.
Key Requirements
Minimum of 8+ years of professional experience in SOC, MDR, Security Operations, or DFIR.
Mandatory expertise in Digital Forensics & Incident Response (DFIR).
Exclusive prior experience working in an MDR (Managed Detection and Response) Service Provider environment.
Proven ability to conduct proactive Threat Hunting and advanced security investigations.
Hands-on technical proficiency with SIEM tools such as Sentinel, Splunk, or QRadar.
Hands-on experience with EDR platforms including Microsoft Defender, CrowdStrike, or Cortex.
In-depth knowledge of the MITRE ATT&CK framework for mapping and analyzing adversary tactics.
Advanced proficiency in Windows Security, Active Directory (AD), and Networking fundamentals.
Foundational or advanced knowledge of Cloud security within Azure, AWS, or GCP.
Ability to work effectively in a 100% remote setting while maintaining high productivity.
Strong analytical and problem-solving skills to handle complex security incidents.
Excellent communication skills for documenting findings and coordinating with global teams.